Besides having Cloudflare I have a captcha plugin for the comment area. That stops a ton of spammers from submitting a comment. I do get a few daily but i’ve been banned there IP address’s. I’m used to handling spammer’s. I’m a super moderator on a large webmaster forum. lol

I’ve been using metro since it was released and never scene this error message anywhere in my dashboard. Could be related to a plugin you have enabled or changes you have made to one of the theme files that’s causing this.

I got my username changed, got a good web host (websynthesis.com) and also using cloudflare.com on my blog.

Here more tips, your wordpress admin password, make sure it’s not the same as other passwords you use online. If a hacker get’s one of your passwords, that person will try it out on accounts that you have online when they find out. Passwords should be long with letters and number’s.

The blog post below is a good read with some basic security things to do/keep in mind on top of the advice given so far in this thread.

Mainly make sure your plugins and wordpress version is up to date. Make sure you have a backup plugin installed to do backups of your blog at least once a week. Why do you do this? Well if by some odd reason your blog get’s hacked or you mess up the blog by editing some coding, you have a backup on hand that isn’t old and you won’t lose to much data. My web host that I mentioned has a lot of good security features in which I can feel safe from a hosting standpoint and backups.